CVE-2019-0567

This PoC demonstrates a type confusion vulnerability in JavaScript engines by exploiting the side effects of NewScObjectNoCtor and InitProto opcodes, leading to memory corruption. It overwrites property slots with an arbitrary value (0x1234) to trigger the issue.

This repository contains a functional exploit for CVE-2019-0567, a Microsoft Edge Chakra vulnerability. The exploit demonstrates arbitrary memory read/write capabilities and achieves remote code execution by leveraging a type confusion bug in the Chakra JavaScript engine.

This repository contains a Chakra exploitation framework targeting CVE-2019-0567, a type confusion vulnerability in the Chakra JavaScript engine. It includes features like abstracted Windows API calls, a custom memory allocator, and ROP chain construction for sandbox escape.

This repository contains a proof-of-concept exploit for CVE-2019-0567, a type confusion vulnerability in Microsoft Edge. The exploit includes a Python script to convert shellcode into JavaScript format for use in the exploit.

This PoC exploits a type confusion vulnerability in ChakraCore (CVE-2019-0567) to achieve arbitrary code execution via a ROP chain. It leaks memory addresses, constructs a ROP chain, and ultimately executes 'calc.exe' as a demonstration.